-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 11 Feb 2024 13:50:22 -0500
Source: pypdf2
Architecture: source
Version: 1.26.0-4+deb11u1
Distribution: bullseye
Urgency: medium
Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Changed-By: Scott Kitterman <scott@kitterman.com>
Changes:
 pypdf2 (1.26.0-4+deb11u1) bullseye; urgency=medium
 .
   * Forward-port CVE fixes by LTS team
     - CVE-2023-36810: Quadratic runtime with malformed PDF missing xref marker.
     - Fix CVE-2022-24859:
         Sebastian Krause discovered that manipulated inline images can force
         PyPDF2, a pure Python PDF library, into an infinite loop, if a
         maliciously crafted PDF file is processed.
Checksums-Sha1:
 9d292c4485990b71c8fde878bf805b5f948cb8f0 1782 pypdf2_1.26.0-4+deb11u1.dsc
 29859e086b6e78459feb660ba24f3b22773e11c1 199539 pypdf2_1.26.0.orig.tar.gz
 83d729046dc59e28918e91e2e97dfed962199dbe 5184 pypdf2_1.26.0-4+deb11u1.debian.tar.xz
 175f8dad16ba3fca327023b8555a440c6157e87a 6505 pypdf2_1.26.0-4+deb11u1_source.buildinfo
Checksums-Sha256:
 67db7ed0e68119817209f2879f30a7a430c390e02df7f35665760b5955b4ca35 1782 pypdf2_1.26.0-4+deb11u1.dsc
 140b1fed792f487f2fd814eb0e832a5b6ef5ae362da302c1fc5a9786d5acb469 199539 pypdf2_1.26.0.orig.tar.gz
 02a281dc7c72b3f5c0c08d330fcc76b8d3bbe025bd2bb399f5550933044486c5 5184 pypdf2_1.26.0-4+deb11u1.debian.tar.xz
 5de7921f6ff36cd7afed9b51083deb03313c3444a50ef9289668104e14f60f15 6505 pypdf2_1.26.0-4+deb11u1_source.buildinfo
Files:
 96e6f2e70f384070ab11ff4f728073db 1782 python optional pypdf2_1.26.0-4+deb11u1.dsc
 3959e3a15606e4b6c0405487cefb4e21 199539 python optional pypdf2_1.26.0.orig.tar.gz
 36edda51cae76c4fb841e163abc5d1bf 5184 python optional pypdf2_1.26.0-4+deb11u1.debian.tar.xz
 85d14f3b17e906fc617f70068691a9fd 6505 python optional pypdf2_1.26.0-4+deb11u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE53Kb/76FQA/u7iOxeNfe+5rVmvEFAmXJGWEACgkQeNfe+5rV
mvFYRBAAwcPK5odiFDWvqpGJXGP+1I0O/dqiTlrXYdGpx2feTkzlwt8SY8sQe3Jg
qDIwBwoXYcTS8KrX1p5N6uvf8bVJ5CtaUDFVEjFNp0CkyGDU7N29podjkrz5TZPy
UnDXYIaxmZhU9ahDxxSEB1AayRGrW1mu4g6sOTPMWjOfkVu715yjQV9Vt+hAsrvC
8iG+sWF/0yLHQbyYlfh0SMCIz0BTSHciHNtQDDOp77enBwvMaQKa1E+UctFU7hKB
VfVzpjEk2nXF12WPhpSwLeAobz73UMBos5p8HpVmMrEVKF1lFWttqHZz6rqG/u5G
jRwyv/aKmp3enZdBGGSXHf8Eu8YTZSZpQBp8M3KwrlO1FsK1rYETXbCLen8rDiZF
l+A5bt7/uXtAum5K0ylS0IJ62vTXIA0ZsEIGXL21IJkGJiSEaAKax68rEpCjEuYl
bIniSuY1F/G7rsb9flAINTSNB8t/p0CbUobj/2Aj+zQKCRtvnsWpDFz7akknDB8s
avs6BW7guIIle51yJvVsHh3cuRKOcVL+LRgERwTu/49rHBjnJXrV0jX1Af/9oJ7X
oRR5+3N0nXXTFJFu5g1nkV1qWcs/uceYximXGrooV6EiV7tynvTic/PEvOisaI6B
QI/B9zy9R1L70eJaDjeevIoh6xkipAsfUlsxEQn1B7audtPYPoY=
=ei63
-----END PGP SIGNATURE-----